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DATA PROCESSING DEVICE AND METHOD 
AND PROGRAM OF SAME 



5 BACKGROUND OF THE INVENTION 

1 . Field of the Invention 

The present invention relates to a data processing 
device for authentication with a service data storing 
device by using key data and a method and program of the 
10 same. 

2 . Description of the Related Art 

For example, there is a data processing device which 
performs authentication with a service data storing 
device on the basis of key data and performs various 
15 processing after confirming legitimacy of the other party 
by the authentication. Such a data processing device has 
for example an authentication function for authentication 
on the basis of key data and a key generation function 
for generating key data. The data processing device is 
20 configured by the above authentication function and key 
generation function mixed together. 

Summarizing the problems to be solved by the 
invention, there is a demand to have different developers 
develop the authentication function and key generation 
25 function in the data processing device and to keep the 
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key generation algorithm used by the key generation 
function secret from the developer of the authentication 
function. In the data processing devices, however, there 
is the problem that the authentication function and the 
5 key generation function are mixed, so it is difficult to 
meet the above demand. 

SUMMARY OF THE INVENTION 

An object of the present invention is to provide a 
data processing device able to keep the technique for 
10 generation of the key data in the key generating means 

secret from the developer of the authenticating means and 
a method and program of the same . 

To attain the above object, according to a first 
aspect of the invention, there is provided a data 
15 processing device comprising an authenticating means for 
authentication with a device to be authenticated oh the 
basis of key data and a key generating means for 
generating the key data on the basis of the data received 
from the authenticating means and providing the Scune to 
20 the authenticating means, wherein the authenticating 
means provides first data and second data to the key 
generating means , and the key generating means generates 
the key data by using only the first data in the first 
data and the second data received from the authenticating 



25 means . 
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The mode of operation of the data processing device 
of the first aspect of the invention is as follows: The 
authenticating means provides the first data and the 
second data to the key generating means,. The key 
5 generating means generates the key data by using only the 
first data in the first data and the second data received 
from the authenticating means. The authenticating means 
performs the authentication with the device to be 
authenticated on the basis of the key data generated by 
10 the key generating means . 

Preferably the key generating means generates key 
data unique to the device to be authenticated on the 
basis of the data received from the authenticating means. 
Further, preferably the key generating means is provided 
15 with a function module having a first input parameter and 
a second input parameter and generating the key data by 
using only the first data entered for the first input 
parameter, and the authenticating means enters the first 
data for the first input parameter of the function module 
20 of the key generating means and enters the second data 
for the second input parameter. 

According to a second aspect of the invention, there 
is provided a data processing method for authentication 
by an authenticating means with a device to be 
25 authenticated on the basis of key data generated by a key 
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generating means, comprising a first step of having the 
authenticating means provide first data and second data 
to the key generating means; a second step of having the 
key generating means generate key data by using only the 
5 first data in the first data and the second data obtained 
at the first step and provide the key data to the 
authenticating means; and a third step of having the 
authenticating means authenticate with the device to be 
authenticated on the basis of the key data received at 
10 the second step. 

According to a third aspect of the invention, there 
is provided a program executing a step for providing key 
data to an authentication program executing a step for 
authentication with a device to be authenticated on the 
15 basis of key data and executed in a data processing 

device, having steps of a first step for receiving first 
data and second data from the authentication program; a 
second step for generating the key data by using only the 
first data in the first data and the second data received 
20 at the first step; and a third step for providing the key 
data generated by the second step to the authentication 
program. 

According to a fourth aspect of the invention, there 
is provided a secure application module for communicating 
25 with an 1C chip storing service date relating to at least 




5 



one service, comprising: an authenticating circuit for 
authentication with a device to be authenticated on the 
basis of key data and a key generating circuit for 
generating the key data on the basis of the data received 
5 from the authenticating circuit and providing the same to 
the authenticating circuit, wherein the authenticating 
circuit provides first data and second data to the key 
generating circuit, and the key generating circuit 
generates the key data by using only the first data in 
10 the first data and the second data received from the 
authenticating circui t . 

BRIEF DESCRIPTION OF THE DRAWINGS 

These and other objects and features of the present 
15 invention will become clearer from the following 

description of the preferred embodiments given with 
reference to the attached drawings, wherein: 

FIG, 1 is a view of the configuration of a card 
system of an embodiment of the present invention; 

20 FIG. 2 is a view of the configuration of an IC built 

in an IC card shown in FIG. 1; 

FIG. 3 is a view for explaining various key data 
defined in the IC shown in FIG. 1; 

FIG. 4 is a functional block diagram of a SAM shown 
25 in FIG. 1; 
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FIG. 5 is a view for explaining processing of the 
SAM shown in FIG. 4; 

FIG. 6 is a view for explaining a software 
configuration of the SAM shown in FIG. 5; 

5 FIG. 7 is a view for explaining a firewall defined 

in the program in the SAM shown in FIG. 6; 

FIG. 8 is a view for explaining registration of key 
management data in the SAM shown in FIG. 5; 

FIG. 9 is a flow chart for explaining a step for 
10 generation of individual key data in a key generation 
unit shown in FIG. 5; 

FIG. 10 is a flow chart for explaining a step for 
registration of key management data in the SAM shown in 
FIG. 5; 

15 FIG. 11 is a flow chart for explaining an example of 

the operation in a case of performing processing 
concerning a service between the IC of the IC card shown 
in FIG. 5 and the SAM; and 

FIG. 12 is a flow chart continuing from FIG. 11 for 
20 explaining an example of the operation in the case of 

performing processing concerning a service between the IC 
of the IC card shown in FIG. 5 and the SAM. 

DESCRIPTION OF THE PREFERRED EMBODIMENTS 
25 Below, an explanation will be given of a card system 
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according to an embodiment of the present invention. FIG. 

1 is a view of the configuration of a card system 1 of 
the present embodiment. As shown in FIG. 1 , the card 
system 1 performs processing concerning a predetermined 
5 service after for example an integrated circuit (IC) 15 
of an IC card 10 and a secure application module (SAM) 12 
perform authentication via a reader/writer (R/W) 11. Here, 

the SAM 12 corresponds to the data processing device of 
the present invention, and the IC 15 corresponds to the 
10 device to be authenticated of the present invention. The 
IC stores service data relating to at least one service. 
The SAM communicates with a semiconductor device such as 
IC card, portable electronic device which has an IC card 
function. 

15 Further, a management device 13 registers a key package 
KP storing the key data etc. to be used for the mutual 
authentication between the SAM 12 and the IC 15 in the 
SAM 12. Further, a manager of the SAM 12, for example, 
the provider of a predetermined service utilizing the IC 
20 card 10, issues an IC card 10 to each of a plurality of 
users . 

The IC 15 stores data concerning various services 
received by the user of the IC 15 utilizing the SAM 12 
and file data of programs as will be explained later and 
25 is set with rights of use for services using the file 
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data. Specifically, the IC 15 and the SAM 12 perform 
mutual authentication on the basis of key data linked 
with a designated service. When they confirm the 
legitimacy of each other, the IC 15 and the SAM 12 
5 perform the processing related to the service in 

cooperation. In the present embodiment, the IC card 10 
issued to each of the plurality of users is allocated the 
key data unique to the individual IC card 10 (key data or 
individual key data of the present invention) as part of 
10 the key data to be used for the authentication. The SAM 
12 receives as input the unique data of the IC card 10, 
for example, a serial number uniquely allocated to the IC 
card 10 at the time of production or other device 
identification data IDM and a plurality of identification 
15 data SIDl, SID2 , and SID3 for identifying the designated 
service etc. from the IC card 10 and generates the key 
data to be used for the authentication by the 
predetermined algorithm on the basis of these. 

Below, an explanation will be given of the 
20 components shown in FIG. 1. 

IC 15: 

FIG. 2 is a view of the configuration of an IC 15 
built into the IC card 10 shown in FIG. 1. As shown in 
FIG. 2, the IC 15 has for example an interface 21, a 
25 memory 22, and a CPU 23 connected via an internal bus 20. 
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The interface 21 transfers data with the SAM 12 via the 
R/W 11. The memory 22 stores data to be used for 
processing concerning the various services received by 
the user of the IC 15 by utilizing the SAM 12 and the 
5 file data of the programs. Further, the memory 22 stores 
various key data used for the authentication with the SAM 
12 before performing the processing relating to the 
services. Further, the memory 22 stores the device 
identification data IDM unique to the individual IC card 
10 10 . 

Note that the SAM 12 performs mutual authentication 
on the basis of the key data linked with the system code 
allocated commonly to SAMs 12 of the models. Access to 
the IC 15 is approved conditional on mutual legitimacy 
15 being recognized by the mutual authentication. Further, 

the memory 22 stores the file data of various services in 
areas as folders having hierarchical structures. The SAM 
12 performs the mutual authentication on the basis of the 
key data linked with the area code of the area in the 
20 memory 22, and the access with respect to the area is 
permitted under such a condition that the mutual 
legitimacy is recognized by the mutual authentication. 
Further, the SAM 12 performs the mutual authentication on 
the basis of the key data linked with the service code of 
25 the file data stored in the area. Access to the file data 
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is approved conditional on mutual legitimacy being 
recognized by the mutual authentication. 

In the present embodiment, as shown in FIG. 3, fixed 
key data and individual key data are defined as the type 
5 of the key data defined as explained above concerning the 
IC 15. The fixed key data is key data of the same value 
among ICs 15 of a plurality of IC cards 10 so far as the 
positions in the file system are the same. That is, the 
fixed key data is key data shared by the ICs 15 of a 
10 plurality of IC cards 10. The individual key data is key 
data of the different values among ICs 15 of a plurality 
of IC cards 10 even if the positions in the file system 
are the same. That is, the individual key data is key 
data unique to the IC 15 of an IC card 10. Note that an 
15 IC 15 performs processing without identifying which of 
the fixed key data or the individual key data the key 
data is. 

The CPU 23 transfers data with the SAM 12 and 
performs mutual authentication with the SAM 12 via the 
20 interface 21 and the R/W 11 on the basis of a program 

read from the memory 22 and the key data. Further, when 
confirming mutual legitimacy by the mutual authentication, 
the CPU 23 executes the processing concerning the service 
linked with the key data used in the mutual 
25 authentication in cooperation with the SAM 12. Further, 




11 



the CPU 23 decodes the enciphered key package via the 
interface 21 in accordance with an operation of a manager 
whose predetermined right has been authenticated at the 
time of for example the issuance of the IC card 10 and 
5 writes the key data in the decoded key package into the 
memory 22 . 

SAM 12: 

FIG. 4 is a functional block diagram of the SAM 12 
shown in FIG. 1; FIG. 5 is a view for explaining the flow 
10 of the data of the SAM 12 at the time of the 

authentication; and FIG. 6 is a view for explaining the 
software configuration of the SAM 12. As shown in FIG. 4, 
the SAM 12 has for example an interface 31, a card 
processing unit 32, a key management unit 33, a key 
15 generation unit 34, and a key storage unit 35 connected 
via an internal bus 30. In the present embodiment, the 
card processing unit 32 and the key management unit 33 
correspond to the authenticating means of the present 
invention, the key generation unit 34 corresponds to the 
20 key generating means of the present invention, and the 
key storage unit 35 corresponds to the key retaining 
means of the present invention. 

The components of the SAM 12 shown in Fig. 4 may be 
realized by circuits or computer programs. 

25 Further, as shown in FIG. 6, the card processing 
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unit 32 and the key management unit 33 are realized by 
execution of an authentication program 80 (authentication 
program of the present invention) at a CPU (not shown) or 
other data processing device (executing means or data 
5 processing device of the present invention) . The key 
generation unit 34 is realized by execution of a key 
generation program 81 (program or key generation program 
of the present invention) at a CPU or other data 
processing device. The key storage unit 35 is realized by 
10 executing a key storage program 82 (key storage program 
of the present invention) at a CPU or other data 
processing device . 

In the present embodiment, as shown in FIG. 7, a 
firewall FWl is defined in the authentication program 80, 
15 and a firewall FW2 is defined in the key generation 

program 81 and the key storage program 82. That is, due 
to the firewalls FWl and FW2 , the access rights to the 
key generation program 81 and the key storage program 82 
are defined separately from the access right to the 
20 authentication program 80. Specifically, in the SAM 12, 
the access rights to the storage areas storing the key 
generation program 81 and the key storage program 82 are 
defined separately from the access right to the storage 
area storing the authentication program 80. Accordingly, 
25 even a person having the access right to the 
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authentication prograun 80 is prohibited from accessing 
the authentication program 80 and the key generation 
prograun 81 if not having access rights to the 
authentication program 80 and the key generation prograun 
5 81. The key storage program 82 is downloaded from the 

outside of the SAM 12 independently from the download of 
the key generation program 81 and the authentication 
program 80 . 

Further, in the present embodiment, the 
10 authentication prograun 80 provides the key generation 

program 81 with the device identification data IDM of the 
IC 15, a plurality of identification data SIDl , SID2 , and 
SID3 of services, etc. The key generation program 81 
generates individual key data KI (key data of the present 
15 invention) on the basis of the device identification data 
IDM and the identification data SID2 (the first data of 
the present invention) among the data input from the 
authentication program 80. That is, the key generation 
program 81 does not use the identification data SIDl and 
20 SID3 (the second data of the present invention) input 

from the authentication program 80 for the generation of 
the individual key data KI . 

Below, an explanation will be given of the technique 
for transfer of data eunong the key generation program 81, 
25 the authentication program 80, and the key storage 
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program 82. In the present embodiment, as shown in FIG. 6, 
the authentication program 80 has a description (code) 
for calling up a function APIl as an application program 
interface (API) function in the key generation program 81 
5 and entering the identification data SIDl , SID2, and SID3 
of the services etc. input from the IC 5 of the IC card 
as input parameters of the function APIl as shown in the 
following equation (1) : 

APIl (SIDl, SID2, SID3) ...(1) 

10 Then, in accordance with the execution of the code 

on the basis of the authentication program 80, the 
program writes the identification data SIDl, SID2, and 
SID^ at designated addresses in the buffer (not 
illustrated) . In accordance with the execution of the 
15 function APIl in the key generation program 81, it 

generates the key using the identification data SIDl, 

SID2, and SID3 written at the addresses as the input 
parcuneters . Note that, it is also possible for the key 
generation program 81 to write the identification data 
20 SIDl, SID2, and SID3 at the addresses in the buffer 

received as returned values of execution of the API 

function. Note that the authentication program 80 
provides the key generation program 81 with the original 
key data KO through the APIl function. As explained above, 

25 the SAM 12 provides the identification data SIDl to SID3 
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and the original key data KO from the authentication 
program 80 to the key generation program 81 via the APIl 
function defined by the key generation program 81. 

The authentication program 80 has a function API2 
5 and stores the device identification data IDM input from 
the IC 5 of an IC card at the address in the buffer 
defined as the returned value of the function API2 . Then, 
the key generation progrsim 81 calls up the function API2 
and reads the device identification data IDM from the 
10 address defined as the returned value thereof. As 
explained above, the SAM 12 provides the device 
identification data IDM from the authentication program 
80 to the key generation program 81 via the function API2 
defined by the authentication program 80. 

15 The key storage program 82 has a function API3 and 

stores master key data KM held by the key storage program 
82 at the address in the buffer defined as the returned 
value of the function API3. The key generation program 81 
calls up the function API 3 and reads the master key data 
20 KM from the address defined as the returned value thereof. 
As explained above, the SAM 12 provides the master key 
data from the key storage program 82 to the key 
generation prograun 81 via the function API3 defined by 
the key storage program 82 . 
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Note that the functions APIl, API2 , and API3 
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correspond to the function modules of the present 
invention . 

Below, an explanation will be given of the 
components of the SAM 12. The interface 31 transfers data 
5 with the IC 15 via the R/W 11 shown in FIG. 1. The card 
processing unit 32 performs the mutual authentication 
with the IC 15 of the IC card 10 via the interface 31 on 
the basis of the key data input from the key management 
unit 33 and, when confirming the mutual legitimacy by the 
10 mutual authentication, performs the processing concerning 
the designated service in cooperation with the IC 15. The 
card processing unit 32 realizes various functions by 
executing the application program. The card processing 
unit 32 performs mutual authentication with the IC 15 on 
15 the basis of the key data input from the key management 
unit 33. 

The key management unit 33 holds the key management 
data KMD for managing the key data to be used for the 
mutual authentication etc. The key management data KMD 
20 shows the identification data SID, the key data K, and 

the key property data KPD linked together as shown in FIG. 
5. The identification data SID is data for identifying 
the service (file data) to be performed in cooperation 
with the IC 15 by the SAM 12 and the storage area 



25 (folder) etc. for accessing the IC 15 accompanied by the 
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service. The identification data SID is for exaunple the 
system code, the area code, or the service code input 
from the IC 15. In the present embodiment, as shown in 
FIG. 6, the authentication program 80 provides the device 
5 identification data IDM input from the IC 15 of the IC 
card and the identification data SIDl, SID2 , and SID3 of 
the service etc. to the key generation program 81. 

The key data K is key data to be used for the mutual 
authentication with the IC 15 preceding the service. Note 
10 that the identification data SID of the processing 
performed on the basis of the individual key data is 
linked with the original key data KO mentioned above as 
the key data K. The key property data KPD is data 
indicating which of the fixed key data or the individual 
15 key data the key data K is. 

When the identification data SID in the key request 
KREQ from the card processing unit 32 is linked with the 
fixed key , data on the basis of the key property data KPD 
of the key management data KMD, the key management unit 
20 33 reads the key data (fixed key data) K linked with the 

identification data SID from the key management data KMD 
and outputs it to the card processing unit 32. On the 
other hand, when the identification data SID in the key 
request KREQ from the card processing unit 32 is linked 
25 with the individual key data on the basis of the key 
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property data KPD of the key management data KMD, the key 
management unit 33 requests the device identification 
data IDM from the card processing unit 32 (request 
IDM_REQ in FIG. 5) and outputs the input device 
5 identification data IDM, identification data SID, and the 
key data K linked with the identification data SID 
extracted from the key management data KMD (the original 
key data KO in FIG. 5) to the key generation unit 34. The 
identification data SID and the original key data KO are 
10 . provided via the function APIl from the authentication 

program 80 to the key generation program 81 as mentioned 
above . 

The key management data KMD is set in the key 
management unit 33 for example as follows. That is, the 
15 management device 13 shown in FIG. 1 generates key 
package data KP obtained by enciphering the key 
management data KMD by the setting use master key data 
KPM as shown in FIG. 8 and outputs this to the SAM 12. 

The SAM 12 decodes and holds the key package data KP 
20 input via the interface 31 at the key management unit 33 
shown in FIG. 4 or a not illustrated decoding unit by 
using the setting use master key data KPM. Here, by 
having a business providing a service using the SAM 12 
set the key management data KMD into the key management 
25 unit 33, the business can manage keys in a secured state 
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and with a high degree of freedom. Note that the key data 
KO serving as the source of generation of the individual 
keys stored in the key management data KMD is not the 
individual key data KI itself. Therefore, even if the 
3 secrecy of the key management data KMD is lost, the 

secrecy of the individual key data KI itself will not be 
lost. 

The key generation unit 34 executes an individual 
key generation program KPRG on the basis of the master 
10 key data KM from the key storage unit 35, the device 
identification data IDM input from the key management 
unit 33, the identification data SID, and the key data K 
(KO) to generate the key data (individual key data) KI 
and outputs this to the key management unit 33. The key 
15 management unit 33 outputs the key data KI input from the 
key generation unit 34 to the card processing unit 32. 

The key generation unit 34 generates the key data KI by 
the steps shown in FIG. 9. The steps shown in FIG. 9 are 
described in the individual key generation program KPRG. 
20 Below, the steps shown in FIG. 9 will be explained. 

Step STll 

The key generation unit 34 receives as input the 
identification data SIDl , SID2, and SID3 and the original 
key data KO from the key management unit 33 on the basis 
25 of the function APIl defined by the key generation 




20 



program 81 as mentioned above. 

Step ST12 

The key generation unit 34 receives as input the 
device identification data IDM from the key management 
5 unit 33 on the basis of the function API2 defined by the 
authentication program 80 as mentioned above. 

Step ST13 

The key generation unit 34 receives as input the 
master key data KM from the key storage unit 35 on the 
10 basis of the function API3 defined by the key storage 
program 82 as mentioned above. 

Step ST14 

The key generation unit 34 adds the identification 
data SID2 input at step STll, the device identification 
15 data IDM input at step ST12 , and the master key data KM 
input at step ST13 and generates the data X. In this way, 
the key generation unit 34 uses the identification data 
SID2 among the identification data SIDl, SID2, and SID3 
input at step STll for the generation of the data X and 
20 does not use the identification data SIDl and SID3 for 

the generation of the data X. Due to this, the processing 
of the key generation program 81 can be kept secret from 
the authentication program 80 defining the card 
processing unit 32 and the key management unit 33. 
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Step ST15 
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The key generation unit 34 rotates the original key 
data KO input at step STll to the right by exactly the 
amount of the value of the data X generated at step ST14 
to generate the individual key data KI . 

5 Step ST16 

The key generation unit 34 outputs the individual 
key data KI generated at step ST13 to the key management 
unit 33. 

Note that, as the individual key generation program 
10 KPRG to be used for the generation of the key data KI by 
the key generation unit 34, for example, it is also 
possible to provide a program of an algorithm differing 
for example for every processing content with the IC 15, 
for example, for every position of the processing target 
15 in the file system, and for example for every area code, 
select the program corresponding to the designated 
identification data SID2, and execute this. The , key 
generation unit 34 may generate the individual key data 
KI without using the master key data KM. The generation 
20 steps of the individual key data shown in FIG. 7 are 

examples. The present invention is not limited to this. 

In this way, the key generation unit 34 generates 
the individual key data by using the device 

identification data IDM, the identification data SID, and 
25 the key data K (KO) in addition to the master key data KM 
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so as t:o give a . role equivalent to the master key data to 
these data concerning the key generation. For this reason, 
the settings concerning the key data used by a business 
etc. having the right over setting the key management 
5 data KMD for the authentication can be freely changed. 

Further, as mentioned above, by generating the individual 
key data on the basis of the different algorithms by the 
individual key generation program KPRG on the basis of 
the position in the file system etc. , the security can be 
10 raised more. That is, even when part of the logic for the 
area service is leaked, the security of the other area 
services can be kept. 

Below, an explanation will be given of an example of 
the operation of the card system 1 shown in FIG. 1. 

15 First Example of Operation: 

In the examiple of operation, a case of setting the 
key management data KMD in the SAM 12 will be explained. 
FIG. 10 is a flow chart for explaining the example of 
. operation. 

20 Step ST21 

The management device 13 shown in FIG. 1 generates 
the key package data KP obtained by enciphering the key 
management data KMD by the setting use master key data 
KPM and outputs this to the SAM 12 as shown in FIG. 6. 
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Step ST22 
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The SAM 12 decodes the key package data KP input via 
the interface 31 in the key management unit 33 shown in 
FIG. 4 or a not illustrated decoding unit by using the 
setting use master key data KPM to generate the key 
5 management data KMD. 

Step ST23 

The key management unit 33 holds the key management 
data KMD generated at step ST22 . 

Second Example of Operation: 

10 In this example of operation, an explanation will be 

given of the example of operation in a case where 
processing concerning a service is carried out between 
the IC 15 of an IC card 10b and the SAM 12 based on FIG. 
5. FIG. 11 and FIG. 12 are flow charts for explaining 
15 this example of operation. 

Step ST31 

The user swipes the IC card 10 at the R/W 11 shown 
in FIG. 1 and designates the service desired by using for 
example an operation unit provided on the R/W 11. Note 
20 that, it is also possible for the IC 15 or the SAM 12 to 
automatically designate the service. Due to this, the IC 
15 outputs to the SAM 12 the identification data SID of 
the designated service and the device identification data 
IDM read from the memory 22 of the IC 15. 
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Step ST32 
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The card processing unit 32 outputs a key request 
KREQ including the identification data SID input at step 
ST31 to the key management unit 33. 

Step ST33 

5 The key management unit 33 identifies which of the 

individual key or the fixed key the key data K linked 
with the identification data SID included in the key 
request KREQ input at step ST22 is with reference to the 
key management data KMD . 

10 Step ST34 

The key management unit 33 proceeds to step ST35 
when the key is identified as a fixed key at step ST33, 
while proceeds to step ST38 when it is identified as an 
individual key. 

15 Step ST35 

The key management unit 33 refers to the key 
management data KMD and acquires the key data (fixed key 
data) corresponding to the individual data SID input at 
step ST32 . 

20 Step ST36 

The key management data 33 outputs the key data 
obtained at step ST35 or the key data input from the key 
generation unit 34 at step ST42 mentioned later to the 
card processing unit 32. 
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Step ST37 




25 



The card processing unit 32 performs the mutual 
authentication with the IC 15 on the basis of the key 
data input at step ST36 and, when confirming the mutual 
legitimacy, performs the service processing corresponding 
5 to the identification data SID input at step ST31 in 
cooperation with the IC 15. 

Step ST38 

The key management unit 33 outputs the request 
IDM_REQ for requesting the device identification data IDM 
10 to the card processing unit 32 when the key is identified 
as an individual key at step ST34 . 

Step ST39 

The card processing unit 32 outputs the device 
identification data IDM input from the IC 15 at step ST31 
15 to the key management unit 33 in response to the request 
IDM_KEQ input at step ST38 . 

Step ST40 

The key management unit 33 reads the key data 
corresponding to the identification data SID from the key 
20 management data KMD. Then, the key management unit 33 

outputs the key data KO, the device identification data 
IDM input at step ST39, and the identification data SID 
input at step ST32 to the key generation unit 34 . 

Step ST41 

25 The key generation unit 34 generates the individual 
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key data KI by using the key data etc. input at step ST33 
by the steps explained by using FIG. 7. 

Step ST42 

The key generation unit 34 outputs the individual 
5 key data KI input at step ST41 to the key management unit 
33. 

As explained above, in the card system 1, as 
explained by using FIG. 6, the SAM 12 provides the 
identification data SIDl to SID3 from the authentication 
10 program 80 to the key generation program 81 , and the key 
generation prograun 81 generates the individual key data 
KI by using only the identification data SIDF2. For this 
reason, it can be made difficult for a developer of the 
authentication program 80 to deduce the key generation 
15 algorithm in the key generation program 81 on the basis 

of the identification data provided to the key generation 
program 81 . 

In the SAM 12, firewalls FWl and FW2 are defined as 
shown in FIG. 7. Therefore, illegal access to the key 
20 generation prograun 81 by the authentication progrsun 80 

can be prevented, and the key generation algorithm in the 
key generation program 81 can be kept secure. 

In the SAM 12 , since the authentication progrcun 80 
and the key generation program 81 are completely 
25 independent programs except for the transfer of data via 
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the functions APIl and API2, development of the 
authentication program 80 and the key generation program 
81 can be proceeded with by different developers in 
parallel . 

5 Further, by configuring the SAM 12 so that_the 

authentication program 80 and the key generation program 
81 independently download the key storage program 82 from 
the outside of the SAM 12, the key generation program 81 
can be updated without exerting an inf luence upon the key 
10 generation program 81. For example, when a business for 
providing a predetermined service prepares the key 
generation program 81, even if updating the key storage 
program 82, the business does not have to update the key 
generation program 81, so can reduce its load. 

15 Further, in the card system 1, preceding the service 

processing between the SAM 12 and the IC 15, the SAM 12 
generates the individual key data KI unique to the IC 15 
on the basis of the device identification data IDM unique 
to the IC card 10 (IC 15) received from the IC 15 and 
20 performs the mutual authentication with the IC 15 on the 
basis of the individual key data KI . For this reason, 
even when the secrecy of the individual key data KI of 
some of the IC cards 10 among the plurality of IC cards 
10 is lost, the secrecy of the individual key data of the 
25 other IC cards 10 is not lost, and the security can be 
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raised. 

Further, according to the card system 1, the 
identification data SID for identifying a service etc. is 
output from the IC 15 to the SAM 12, and the algorithm of 
5 the individual key generation is switched on the basis of 
the identification data SID at the SAM 12. Therefore, the 
secrecy of individual key data based on other algorithms 
can be kept in the case where the secrecy of some of the 
algorithms is lost. 

10 Further, according to the card system 1, the 

identification data SID for identifying a service etc. is 
output from the IC 15 to the SAM 12 and it is decided 
which of the individual key or the fixed key the key data 
to be used for the authentication is on the basis of the 
15 identification data SID. Therefore, the IC 15 can 

perform the processing without awareness as to which of 
the individual key or the fixed key the key data to be 
used for the authentication is. 

Further, according to the card system 1, the key 
20 management unit 33 switches between processing 

corresponding to an individual key and a fixed key. 
Therefore the card processing unit 32 can perform 
processing without identifying which of the individual 
key or the fixed key the key data to be used for the 
25 authentication is. For this reason, the load accompanied 




29 



by the development of the card processing unit 32 can be 
reduced and, at the same time , the leakage of information 
concerning the authentication using an individual key to 
the developer of the card processing unit 32 can be 
5 prevented . 

Further, according to the card system 1, by making 
all key data a fixed key in property in the key property 
data KPD of the key management data KMD, compatibility 
with a system using only fixed keys can be obtained. 

10 Further, according to the card system 1, processing 

concerned with the individual key data is carried out on 
the basis of the key management data KMD in the key 
management unit 33 independently from the operation of 
the card processing unit 32. Therefore the information 
15 concerning the individual key data can be kept unknown 

from the developer of the application program of the card 
processing unit 32. That is, the information concerning 
the individual key data can be kept closed to only the 
setter and/or developer of the key management data KMD 
20 and the individual key generation program KPRG, so a high 
security can be realized. 

According to the card system 1, by generating the 
individual key data on the basis of the device 
identification data IDM as mentioned above, it is not 
25 necessary to store the individual key data of all IC 
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cards 10, so the SAM 12 can be configured by using a 
small scale memory. 

In the embodiments, the IC 15 of the IC card 10 was 
illustrated as the device to be authenticated of the 
5 present invention, but the device to be authenticated may 
be a computer or the like too. 

Summarizing the effects of the present invention, 
according to the present invention, a data processing 
device and data processing method able to keep the 
10 technique for generation of key data in the key 

generating means secret from the developer of the 
authenticating means can be provided. Further, according 
to the present invention, a program able to keep the 
algorithm of the key generation secret from the 
15 authentication program can be provided. 

While the invention has been described with 
reference to specific embodiments chosen for purpose of 
illustration, it should be apparent that niomerous 
modifications could be made thereto by those skilled in 
20 the art without departing from the basic concept and 
scope of the invention. 




